[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)





--- On Fri, 22/5/09, Boyd Stephen Smith Jr. <bss@iguanasuicide.net> wrote:

> From: Boyd Stephen Smith Jr. <bss@iguanasuicide.net>
> Subject: Re: sudo vs. su (was Re: new to list, new to debian, new to linux)
> To: debian-user@lists.debian.org
> Date: Friday, 22 May, 2009, 8:14 PM
> In <20090522183807.GA16565@markshroyer.com>,
> Mark Shroyer wrote:
> >On Fri, May 22, 2009 at 06:56:18AM -0700, Thorny
> wrote:
> >> You've just advised an obvious newbie (stated in
> post) on how to make
> >> his system insecure. Giving ALL=(All) ALL rights
> to a normal user is
> >> pretty much the same as running as root and is not
> recommended on a
> >> Debian system.
> 
> It's not equivalent to running as root, since (a) you have
> to prefix 
> privileged operations with "sudo", (b) you have to re-auth
> such actions by 
> entering your password and (c) your sudo credentials will
> timeout 
> automatically after they are not used.


Errr, yeah whatever.... Until they just do "sudo su" and they're in. ALL=(All) ALL is a bad idea.
> 





Reply to: